Information System Security Officer

Key Role:

Work directly with the government client supporting daily activities including providing information assurance support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assist with the management of security aspects of the information system and perform day-to-day security operations of the system and evaluate security solutions to ensure they meet security requirements for processing classified information. Perform vulnerability and risk assessment analysis to support certification and accreditation and configuration management for information system security software, hardware, and firmware. Prepare and review documentation, including System Security Plans (SSPs), Risk Assessment Reports, Assessment and Authorization (A&A) packages, and support security authorization activities in compliance with DoD Risk Management Framework (RMF). Work with engineering teams during system design and build processes to ensure designs are adhering to security best practices. Support daily tasks of remanence security including media destruction, sanitization of equipment, user account actions, software accountability and tracking.

Basic Qualifications:

• 5+ years of experience with Cybersecurity or Information Systems Security

• 5+ years of experience in guiding an Information System through the seven-step Risk Management Framework (RMF) process

• Experience reviewing security requirements using the RMF management tools, including Enterprise Mission Assurance Support Service (eMASS) or Xacta

• Experience with the National Institute of Standards and Technology (NIST) and Federal Information Security Management Act (FISMA) requirements and reporting

• Experience with vulnerability and compliance assessment tools including Assured Compliance Assessment Solution (ACAS)

• TS/SCI clearance

• HS diploma or GED

• Ability to obtain DoD 8570 compliance - IAM Category, Level I or II certification within 6 months of start date

Additional Qualifications:

• Experience working directly with customers to provide operational support

• Experience with developing, analyzing, or executing technical documentation such as test plans and procedures

• Experience with hardening Windows, Linux, and Virtual infrastructure using DoD Security Technical Implementation Guides

• Knowledge of Software Development Life Cycle (SDLC) processes

• Knowledge of DevSecOps, zero trust architecture, and enterprise level storage and database solutions

• Knowledge of VMware solutions

• Bachelor's degree

• DoD 8570 compliance -IAM Category, Level III Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

We're an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.